🔥 3-day streak
Certified Kubernetes Administrator (CKA)74 / 125
Question 74 of 125

A team runs a payments API in the namespace 'payments' with pods labeled 'app=payments-api'. Security requires that only pods running in namespaces labeled 'tier=frontend' be allowed to connect to the payments API on TCP port 8443, and all other ingress must be denied. No NetworkPolicy currently exists in the 'payments' namespace. Which NetworkPolicy correctly enforces this requirement?

Reviewed for accuracy · Report an issueNext question